CVE-2025-50901
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-08-20
Last updated on: 2025-09-11
Assigner: MITRE
Description
Description
JeeWMS 771e4f5d0c01ffdeae1671be4cf102b73a3fe644 (2025-05-19) contains incorrect authentication bypass vulnerability, which can lead to arbitrary file reading.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| jeewms | jeewms | 2025-05-19 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-287 | When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in JeeWMS allows an attacker to bypass authentication incorrectly, which means they can access the system without proper credentials. This flaw can lead to the attacker being able to read arbitrary files on the system.
How can this vulnerability impact me? :
The impact of this vulnerability is that an attacker could gain unauthorized access to sensitive files by bypassing authentication, potentially leading to data exposure or leakage.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70